VIR Vulnerability Intelligence Relay

CVE-2012-2800

critical
Published 2012-09-10 · Modified 2026-04-29
CVSS v3
CVSS v2
10.0
VIR risk
10.0

Description

Unspecified vulnerability in the ff_ivi_process_empty_tile function in libavcodec/ivi_common.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors in which the "tile size ... mismatches parameters" and triggers "writing into a too small array."

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact
VendorProductVersionsFixed
libavlibav0.8
libavlibav0.8.1
libavlibav0.8.2
libavlibav0.8.3
ffmpegffmpeg{"endIncluding":"0.10.4"}
ffmpegffmpeg0.3
ffmpegffmpeg0.3.1
ffmpegffmpeg0.3.2
ffmpegffmpeg0.3.3
ffmpegffmpeg0.3.4
ffmpegffmpeg0.4.0
ffmpegffmpeg0.4.2
ffmpegffmpeg0.4.3
ffmpegffmpeg0.4.4
ffmpegffmpeg0.4.5
ffmpegffmpeg0.4.6
ffmpegffmpeg0.4.7
ffmpegffmpeg0.4.8
ffmpegffmpeg0.4.9
ffmpegffmpeg0.5
ffmpegffmpeg0.5.1
ffmpegffmpeg0.5.2
ffmpegffmpeg0.5.3
ffmpegffmpeg0.5.4
ffmpegffmpeg0.5.4.5
ffmpegffmpeg0.5.4.6
ffmpegffmpeg0.6
ffmpegffmpeg0.6.1
ffmpegffmpeg0.6.2
ffmpegffmpeg0.6.3
ffmpegffmpeg0.7
ffmpegffmpeg0.7.1
ffmpegffmpeg0.7.2
ffmpegffmpeg0.7.3
ffmpegffmpeg0.7.4
ffmpegffmpeg0.7.5
ffmpegffmpeg0.7.6
ffmpegffmpeg0.7.7
ffmpegffmpeg0.7.8
ffmpegffmpeg0.7.9
ffmpegffmpeg0.7.11
ffmpegffmpeg0.7.12
ffmpegffmpeg0.8.0
ffmpegffmpeg0.8.1
ffmpegffmpeg0.8.2
ffmpegffmpeg0.8.5
ffmpegffmpeg0.8.5.3
ffmpegffmpeg0.8.5.4
ffmpegffmpeg0.8.6
ffmpegffmpeg0.8.7
ffmpegffmpeg0.8.8
ffmpegffmpeg0.8.10
ffmpegffmpeg0.8.11
ffmpegffmpeg0.9
ffmpegffmpeg0.9.1
ffmpegffmpeg0.10
ffmpegffmpeg0.10.3
libavlibav0.7
libavlibav0.7.1
libavlibav0.7.2
libavlibav0.7.3
libavlibav0.7.4
libavlibav0.7.5
libavlibav0.7.6

References

Verify integrity in audit chain (admin only). AS-IS.